Citrix Analytics for Security

Manage administrator roles for Security Analytics

As a Citrix Cloud administrator with full access permissions, you can invite other administrators to manage the Security Analytics offering and assign them one of the following custom roles:

  • Security Analytics- Full Administrator

  • Security Analytics- Read Only Administrator

Permissions for the custom roles

The administrators with the Security Analytics- Full Administrator role can access all the features and functionalities of the Security Analytics offering. They can use and modify the features according to their organizational requirements. For example, a full administrator can create custom risk indicators, enable geofence, and create policies.

The administrators with the Security Analytics- Read Only Administrator role can only access and view the Security dashboards- Users, User Access, App Access, Access Assurance, Reports, and Share Links. They can monitor the user behavior and view the user events on these dashboards. However, they are not allowed to perform any critical tasks such as:

  • Turn on or off data processing for the data sources

  • Create or remove policies and actions

  • Apply actions manually on the risk indicators shown on the user risk timeline

  • Create, modify, or delete custom risk indicators

  • Create custom reports

  • Add, modify, or delete another admin users

  • Add or modify geo fence for access assurance location

Security alert notifications for the administrators

Like the Citrix Cloud administrators with full access permissions, the administrators with the custom roles (Full access and Read-only access) receive email notifications from Security Analytics.

The administrators receive two type of email notifications:

  • Weekly notification about the security insights in their organization. For more information, see Weekly email notification.

  • Notifications based on the Notify administrator(s) action. For more information, see Policies and actions.

If you are a Citrix Cloud administrator with full access permission, the email notifications are disabled by default in your Citrix Cloud account. To receive email notifications from any Citrix Cloud services such as Citrix Analytics, enable the notification option in your Citrix Cloud. For more information, see Received email notifications.

If you are an administrator with the custom role- Security Analytics- Full Administrator or Security Analytics-Read Only Administrator, you always receive the weekly email notifications from Security Analytics. There is no option to disable the weekly email notifications. For the email notifications associated the Notify administrator(s) action, you can choose to stop receiving these notifications by requesting your Citrix Cloud administrator who has full access permission. The administrator must remove you from the distribution list associated with the Notify administrator(s) action. For more information about the distribution list, see Email distribution list.

For more information, see Manage administrators for Citrix Analytics.

Manage administrator roles for Security Analytics